Implement /oauth2/token endpoint; token auth middleware

src/auth/server/repositories/ORMTokenRepository.ts

@@ -20,17 +20,19 @@ export class ORMTokenRepository extends TokenRepository {
         }
     }
 
-    async issue(user: Authenticatable, client: OAuth2Client, scope?: string): Promise<OAuth2Token> {
+    async issue(user: Authenticatable|undefined, client: OAuth2Client, scope?: string): Promise<OAuth2Token> {
         const expiration = this.config.safe('outh2.token.lifetimeSeconds')
             .or(60 * 60 * 6)
             .integer() * 1000
 
         const token = new OAuth2TokenModel()
         token.scope = scope
-        token.userId = String(user.getUniqueIdentifier())
         token.clientId = client.id
         token.issued = new Date()
         token.expires = new Date(Math.floor(Date.now() + expiration))
+        if ( user ) {
+            token.userId = String(user.getUniqueIdentifier())
+        }
         await token.save()
 
         return token
@@ -40,10 +42,10 @@ export class ORMTokenRepository extends TokenRepository {
         const secret = this.config.safe('oauth2.secret').string()
         const payload = {
             id: token.id,
-            userId: token.userId,
             clientId: token.clientId,
             iat: Math.floor(token.issued.valueOf() / 1000),
             exp: Math.floor(token.expires.valueOf() / 1000),
+            ...(token.userId ? { userId: token.userId } : {}),
             ...(token.scope ? { scope: token.scope } : {}),
         }
 
@@ -74,10 +76,10 @@ export class ORMTokenRepository extends TokenRepository {
 
         const value = {
             id: decoded.id,
-            userId: decoded.userId,
             clientId: decoded.clientId,
             issued: new Date(decoded.iat * 1000),
             expires: new Date(decoded.exp * 1000),
+            ...(decoded.userId ? { userId: decoded.userId } : {}),
             ...(decoded.scope ? { scope: decoded.scope } : {}),
         }